$ rpki-client -vvf rpki-rsync.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/323430323a666463303a633830303a3a2f34382d3438203d3e20313337333633.roa File: 323430323a666463303a633830303a3a2f34382d3438203d3e20313337333633.roa (raw, json) Hash identifier: CjRDsAz+aS/+92X6fntWUbGjGlM8inRBSEZ9nZ+tTOw= Subject key identifier: C8:D5:11:6B:BE:F7:41:A6:83:D4:AC:C1:23:AA:2B:F1:AB:47:22:E4 Certificate issuer: /CN=A06CE5EEEFDB5B6643B18A83EBE39B3C52FFD305 Certificate serial: 5FA4BDFECB47FA718BC119A7A60C9967E717228A Authority key identifier: A0:6C:E5:EE:EF:DB:5B:66:43:B1:8A:83:EB:E3:9B:3C:52:FF:D3:05 Authority info access: rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A06CE5EEEFDB5B6643B18A83EBE39B3C52FFD305.cer Subject info access: rsync://rpki-rsync.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/323430323a666463303a633830303a3a2f34382d3438203d3e20313337333633.roa Signing time: Sun 03 May 2026 03:08:19 +0000 ROA not before: Sun 03 May 2026 03:03:19 +0000 ROA not after: Sun 02 May 2027 03:08:19 +0000 asID: 137363 IP address blocks: 2402:fdc0:c800::/48 maxlen: 48 Validation: OK Signature path: rsync://rpki-rsync.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/A06CE5EEEFDB5B6643B18A83EBE39B3C52FFD305.crl rsync://rpki-rsync.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/A06CE5EEEFDB5B6643B18A83EBE39B3C52FFD305.mft rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A06CE5EEEFDB5B6643B18A83EBE39B3C52FFD305.cer rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.crl rsync://rpki-rsync.idnic.net/repo/IDNIC/1/419A85CDF8A430516946869D1C492037D6BC6E9E.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/QZqFzfikMFFpRoadHEkgN9a8bp4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Thu 14 May 2026 01:50:36 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 5f:a4:bd:fe:cb:47:fa:71:8b:c1:19:a7:a6:0c:99:67:e7:17:22:8a Signature Algorithm: sha256WithRSAEncryption Issuer: CN=A06CE5EEEFDB5B6643B18A83EBE39B3C52FFD305 Validity Not Before: May 3 03:03:19 2026 GMT Not After : May 2 03:08:19 2027 GMT Subject: CN=C8D5116BBEF741A683D4ACC123AA2BF1AB4722E4 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:aa:cb:da:88:32:c2:bc:62:e6:53:bf:a7:04:7e: bd:59:8e:c2:7e:f5:56:c7:8b:c6:fc:f4:3a:2c:c3: ee:f0:3c:5c:5e:6f:42:07:2a:1b:9e:d4:2a:a0:b6: c8:f1:ee:0b:93:96:35:89:9c:e8:6e:5f:66:41:a1: f8:d0:7a:16:34:7d:e4:ae:a7:ef:30:db:59:ef:7b: 6b:e3:d3:6e:c5:25:f7:1e:da:4d:7c:9b:84:9b:49: 8e:1f:2a:43:7f:7e:db:4f:79:8c:5f:87:f0:ae:e9: ee:5c:1d:1c:bd:36:a4:2a:c6:fb:77:b4:7e:7e:0e: e8:02:b4:16:18:7d:8a:50:72:a8:0b:c7:d3:a9:e0: 76:c6:bd:0f:8f:68:89:c9:03:8b:37:8f:2f:1a:7d: ad:8e:31:19:ee:13:11:c8:97:9e:51:e9:26:0b:dd: ce:14:33:17:c0:5a:99:9c:a2:bd:dd:09:b1:0e:8b: 04:a0:ce:6c:a9:8b:d0:89:a0:03:26:41:68:6c:5c: ea:ae:68:62:20:44:fe:b0:d5:73:43:3e:8b:94:a5: 12:ff:0f:24:0f:1e:aa:b8:91:f9:4c:0d:55:3d:58: 9a:9c:de:4c:e3:2e:b3:ea:3f:94:af:c9:f4:8d:31: 7c:a5:69:80:b0:ad:5a:3b:49:0e:52:73:33:57:76: c5:51 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: C8:D5:11:6B:BE:F7:41:A6:83:D4:AC:C1:23:AA:2B:F1:AB:47:22:E4 X509v3 Authority Key Identifier: keyid:A0:6C:E5:EE:EF:DB:5B:66:43:B1:8A:83:EB:E3:9B:3C:52:FF:D3:05 X509v3 Key Usage: critical Digital Signature X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/A06CE5EEEFDB5B6643B18A83EBE39B3C52FFD305.crl Authority Information Access: CA Issuers - URI:rsync://rpki-rsync.idnic.net/repo/IDNIC/1/A06CE5EEEFDB5B6643B18A83EBE39B3C52FFD305.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.idnic.net/repo/d1085b4a-f573-42f3-825c-1cf0c872b152/0/323430323a666463303a633830303a3a2f34382d3438203d3e20313337333633.roa X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv6: 2402:fdc0:c800::/48 Signature Algorithm: sha256WithRSAEncryption b6:16:1c:0f:17:fe:41:1e:24:9f:86:a4:c9:2d:97:42:e2:00: f5:fa:23:b6:fb:7b:23:8c:76:72:48:39:b4:c6:f9:20:6d:11: 94:13:96:c2:2a:b8:3e:70:2a:eb:19:f5:d8:66:8f:a7:1a:a0: f4:d9:1c:4b:04:a9:0b:df:8c:0f:44:9e:52:f1:d7:b7:0d:fc: 10:e1:80:fd:dc:43:21:fa:e9:8e:09:10:32:40:1e:42:5c:ad: ab:50:e1:ff:5a:0c:37:7a:7e:f9:18:28:e6:3e:47:5e:14:ef: 5f:b9:14:07:96:01:10:66:05:9c:f6:36:38:e9:e2:47:38:a3: e1:58:30:3f:c0:99:41:86:da:91:9d:00:5f:04:47:9a:42:36: 30:2f:5c:ae:1e:c6:2b:99:f1:e6:b8:90:77:48:6e:1b:d3:8f: 8e:e1:a1:44:eb:ec:50:8b:77:24:dc:64:ba:40:f4:5b:8f:92: 50:58:56:6b:b7:47:af:04:e3:ac:34:8a:5e:91:43:50:9f:c5: ac:57:a2:55:90:b6:fd:1e:43:aa:6b:4b:e6:30:90:46:d9:54: 06:64:34:ca:43:8c:4c:c2:c1:77:14:e0:64:90:50:55:e0:70: 84:79:c0:1a:24:2d:af:0e:be:48:ed:15:b2:31:fc:b3:09:ea: 24:39:7b:d8 -----BEGIN CERTIFICATE----- MIIFNTCCBB2gAwIBAgIUX6S9/stH+nGLwRmnpgyZZ+cXIoowDQYJKoZIhvcNAQEL BQAwMzExMC8GA1UEAxMoQTA2Q0U1RUVFRkRCNUI2NjQzQjE4QTgzRUJFMzlCM0M1 MkZGRDMwNTAeFw0yNjA1MDMwMzAzMTlaFw0yNzA1MDIwMzA4MTlaMDMxMTAvBgNV BAMTKEM4RDUxMTZCQkVGNzQxQTY4M0Q0QUNDMTIzQUEyQkYxQUI0NzIyRTQwggEi MA0GCSqGSIb3DQEBAQUAA4IBDwAwggEKAoIBAQCqy9qIMsK8YuZTv6cEfr1ZjsJ+ 9VbHi8b89Dosw+7wPFxeb0IHKhue1Cqgtsjx7guTljWJnOhuX2ZBofjQehY0feSu p+8w21nve2vj027FJfce2k18m4SbSY4fKkN/fttPeYxfh/Cu6e5cHRy9NqQqxvt3 tH5+DugCtBYYfYpQcqgLx9Op4HbGvQ+PaInJA4s3jy8afa2OMRnuExHIl55R6SYL 3c4UMxfAWpmcor3dCbEOiwSgzmypi9CJoAMmQWhsXOquaGIgRP6w1XNDPouUpRL/ DyQPHqq4kflMDVU9WJqc3kzjLrPqP5SvyfSNMXylaYCwrVo7SQ5SczNXdsVRAgMB AAGjggI/MIICOzAdBgNVHQ4EFgQUyNURa773QaaD1KzBI6or8atHIuQwHwYDVR0j BBgwFoAUoGzl7u/bW2ZDsYqD6+ObPFL/0wUwDgYDVR0PAQH/BAQDAgeAMIGGBgNV HR8EfzB9MHugeaB3hnVyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3JlcG8v ZDEwODViNGEtZjU3My00MmYzLTgyNWMtMWNmMGM4NzJiMTUyLzAvQTA2Q0U1RUVF RkRCNUI2NjQzQjE4QTgzRUJFMzlCM0M1MkZGRDMwNS5jcmwwcgYIKwYBBQUHAQEE ZjBkMGIGCCsGAQUFBzAChlZyc3luYzovL3Jwa2ktcnN5bmMuaWRuaWMubmV0L3Jl cG8vSUROSUMvMS9BMDZDRTVFRUVGREI1QjY2NDNCMThBODNFQkUzOUIzQzUyRkZE MzA1LmNlcjCBrQYIKwYBBQUHAQsEgaAwgZ0wgZoGCCsGAQUFBzALhoGNcnN5bmM6 Ly9ycGtpLXJzeW5jLmlkbmljLm5ldC9yZXBvL2QxMDg1YjRhLWY1NzMtNDJmMy04 MjVjLTFjZjBjODcyYjE1Mi8wLzMyMzQzMDMyM2E2NjY0NjMzMDNhNjMzODMwMzAz YTNhMmYzNDM4MmQzNDM4MjAzZDNlMjAzMTMzMzczMzM2MzMucm9hMBgGA1UdIAEB /wQOMAwwCgYIKwYBBQUHDgIwIgYIKwYBBQUHAQcBAf8EEzARMA8EAgACMAkDBwAk Av3AyAAwDQYJKoZIhvcNAQELBQADggEBALYWHA8X/kEeJJ+GpMktl0LiAPX6I7b7 eyOMdnJIObTG+SBtEZQTlsIquD5wKusZ9dhmj6caoPTZHEsEqQvfjA9EnlLx17cN /BDhgP3cQyH66Y4JEDJAHkJcratQ4f9aDDd6fvkYKOY+R14U71+5FAeWARBmBZz2 Njjp4kc4o+FYMD/AmUGG2pGdAF8ER5pCNjAvXK4exiuZ8ea4kHdIbhvTj47hoUTr 7FCLdyTcZLpA9FuPklBYVmu3R68E46w0il6RQ1CfxaxXolWQtv0eQ6prS+YwkEbZ VAZkNMpDjEzCwXcU4GSQUFXgcIR5wBokLa8OvkjtFbIx/LMJ6iQ5e9g= -----END CERTIFICATE-----Generated at Wed May 13 16:19:32 2026 by rpki-client